CVE-2026-23903 | Apache Shiro up to 2.0.6 authorization

Inserito da Angelo Barbosa | Feb 9, 2026 | CVE

A vulnerability, which was classified as critical, was found in Apache Shiro up to 2.0.6. This affects an unknown part. Executing a manipulation can lead to authorization bypass.

This vulnerability is tracked as CVE-2026-23903. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-23903 | Apache Shiro up to 2.0.6 authorization

Post correlati

CVE-2026-0728 | code-projects Intern Membership Management System 1.0 delete_admin.php admin_id sql injection

CVE-2024-49839 | Qualcomm Snapdragon Auto up to X75 5G Modem-RF System Management Frame buffer over-read

CVE-2024-13698 | Astoundify Jobify Plugin up to 4.2.7 on WordPress download_image_via_ai authorization

CVE-2024-45368 | AutomationDirect DirectLogic H2-DM1E up to 2.8.0 session fixiation (icsa-24-256-17)